CVE-2021-20016CISA KEVEPSS p98.5%

CVE-2021-20016SonicWall SSLVPN SMA100 SQL Injection Vulnerability

SonicWall / SSLVPN SMA100

Description

SonicWall SSLVPN SMA100 contains a SQL injection vulnerability that allows remote exploitation for credential access by an unauthenticated attacker.

Scoring

EPSS40.04% probability of exploitation · percentile 98.5% · 2026-06-18T12:00:27Z

CISA KEV entry

Added to KEV: 2021-11-03

(incoming)1

TypeTargetConfidenceTier
KEVEntrySonicWall SSLVPN SMA100 SQL Injection Vulnerabilitykev-cve-2021-200160%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
SonicWall SMA100 SQL Injection Vulnerability
CVE
SonicWall Secure Remote Access (SRA) SQL Injection Vulnerability
CVE
SonicWall SMA100 Appliances OS Command Injection Vulnerability
CVE
SonicWall SMA 100 Appliances Stack-Based Buffer Overflow Vulnerability
CVE
SonicWall SonicOS SSLVPN Improper Authentication Vulnerability
CVE
Sophos SFOS SQL Injection Vulnerability
Sourced from NVD + CISA KEV + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.